| VID |
22563 |
| Severity |
30 |
| Port |
8880, ... |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
IBM WebSphere Application Server 7.0 before Fix Pack 25 appears to be running on the remote host and is potentially affected by the following vulnerabilities :
- Several errors exist related to SSL/TLS that can allow an attacker to carry out denial of service attacks against the application. (CVE-2012-2190, CVE-2012-2191, PM66218)
- Unspecified cross-site scripting issues exist related to the administrative console. (CVE-2012-3293, PM60839)
- An unspecified error in the 'ISC Console' can allow a remote attacker to take over a valid user's session. (CVE-2012-3304, PM54356)
- An unspecified directory traversal error exists that can allow remote attackers to overwrite files outside the application's deployment directory. (CVE-2012-3305, PM62467)
- When multi-domain support is enabled, the application does not properly purge passwords from the authentication cache. (CVE-2012-3306, PM66514)
- An error exists related to 'Federated Repositories', 'IIOP' connections, 'CBIND' checking and 'Optimized Local Adapters' that can allow a remote attacker to bypass security restrictions. Note that this issue affects the application when running on z/OS. (CVE-2012-3311, PM61388)
- The fix contained in PM44303 contains an error that can allow an authenticated attacker to bypass security restrictions and gain administrative access to the application. (CVE-2012-3325, PM71296)
* Note: This check solely relied on the banner of the remote Web server to assess this vulnerability, so this might be a false positive.
* References:
http://www-01.ibm.com/support/docview.wss?uid=swg24033267
http://www-01.ibm.com/support/docview.wss?uid=swg27014463#70025
http://www-01.ibm.com/support/docview.wss?uid=swg21611313
* Platforms Affected:
IBM WebSphere Application Server versions 7.0 prior to 7.0 Fix Pack 25 |
| Recommendation |
Upgrade to the latest version of IBM WebSphere Application Server 7.0 (Fix Pack 25 for 7.0 (7.0.0.25) or later), available from the IBM Support & downloads Web site at http://www-01.ibm.com/support/docview.wss?uid=swg24033267 |
| Related URL |
CVE-2012-2190,CVE-2012-2191,CVE-2012-3293,CVE-2012-3304,CVE-2012-3305,CVE-2012-3306,CVE-2012-3311,CVE-2012-3325 (CVE) |
| Related URL |
54743,55149,55185,55309,55671,55678 (SecurityFocus) |
| Related URL |
(ISS) |
|
